There is a security exploit going around, and it could affect anyone not using the most up-to-date version of WordPress at the moment, which is WordPress 2.8.4. Lorelle has a good writeup on how old WordPress versions are under attack. To summarize, here’s what to look out for if you think your WordPress site may have been compromised.

• Unusual additions to your WordPress permalink structure. If you see anything like “eval” and/or “base64_decode” in your URLs, you’ve already been hit.
• This is a real kicker: a hidden admin account. That’s right, the exploit can let the attacker set up a hidden admin account that may not even be displayed in your user list.

This post offers some solutions if you have already been hacked. Remove the extra permalink code in Settings → Permalinks, remove the extra admin account, and (obviously) upgrade to the latest version of WordPress.

Has anyone been affected by this exploit? I’m happy to say out of all of my WordPress sites, I haven’t been hit, although I have still upgraded all of my WordPress installations to the latest version, including Theme Lab, and I highly recommend you do the same (as long as you backup first). Just another reason to keep your WordPress version up-to-date.

Today we have an awesome free WordPress theme, originally designed by Styleshout. This theme has a number of cool features and is reminicsent of the FreshPick theme, also designed by Styleshout. There are six widgetized areas, including a widgetized footer, as well as a custom widget included with the theme. It also has threaded comments, so you’ll need at least WordPress 2.7. Other features will also be gone over below.

Live Demo | Download

And now onto the features in more detail…

Read More

This is just a quick announcement post about a photography blog I recently came across with an interesting business model: selling WordPress themes on the side. As you can imagine, they are photography-oriented themes.

At the moment, they have five different themes priced at $59 each, or you could get them all for $99. All of these themes look great and would be ideal for a photography portfolio of sorts, with an accompanying blog.

If there are any photographers here, would you consider buying themes like this? To any bloggers out there, do you find this niche WordPress theme selling model interesting?